Yes, Rocketcyber is free to use.

How do I install Rocketcyber?

Rocketcyber is a local plugin. Install it using the provided package and add the generated configuration snippet to your AI app's MCP config file. Then restart your AI app.

Is Rocketcyber safe to use?

Rocketcyber was flagged by MCP Marketplace's security scan, scoring 4.8/10 (high risk). It has 2 high or critical findings to review. Review the security report on this page carefully before installing it.

What credentials does Rocketcyber need?

Rocketcyber requires the following credentials or environment variables: ROCKETCYBER_API_KEY, ROCKETCYBER_CUSTOMER_ID, ROCKETCYBER_API_URL, MCP_TRANSPORT, AUTH_MODE, LOG_LEVEL. You can find setup instructions on the server detail page.

What AI apps work with Rocketcyber?

Rocketcyber uses the Model Context Protocol (MCP) and works with any MCP-compatible AI app, including Claude, ChatGPT / Codex, Gemini, Copilot, Cursor, and more.

Back to Browse

Rocketcyber MCP Server

by Wyre Technology

Developer ToolsUse Caution4.8MCP RegistryLocal

Free

Server data from the Official MCP Registry

MCP server for RocketCyber Managed SOC — incidents, alerts, agents, and customer telemetry.

About

MCP server for RocketCyber Managed SOC — incidents, alerts, agents, and customer telemetry.

Security Report

4.8

Use Caution4.8High Risk

This is a well-structured MCP server for RocketCyber with proper authentication mechanisms and read-only operations. The server correctly enforces API key requirements, implements stateless per-request isolation in HTTP/gateway modes to prevent credential leakage between concurrent requests, and uses environment variables for credential storage. Minor code quality issues around error handling and input validation do not materially impact security. Supply chain analysis found 2 known vulnerabilities in dependencies (1 critical, 1 high severity).

7 files analyzed · 8 issues found

Security scores are indicators to help you make informed decisions, not guarantees. Always review permissions before connecting any MCP server.

Permissions Required

This plugin requests these system permissions. Most are normal for its category.

HTTP Network Access

Connects to external APIs or services over the internet.

env_vars

Check that this permission is expected for this type of plugin.

What You'll Need

Set these up before or after installing:

RocketCyber API key for authenticating to the Managed SOC APIRequired

Environment variable: ROCKETCYBER_API_KEY

RocketCyber customer (tenant) identifierOptional

Environment variable: ROCKETCYBER_CUSTOMER_ID

RocketCyber API base URL — override only if using a non-default regionOptional

Environment variable: ROCKETCYBER_API_URL

Transport mode for the server. Set to 'stdio' for local CLI use; the image defaults to 'http' for gateway hosting.Optional

Environment variable: MCP_TRANSPORT

Credential source: 'env' reads vars locally, 'gateway' expects header injection from the WYRE MCP Gateway.Optional

Environment variable: AUTH_MODE

Log verbosity: debug, info, warn, errorOptional

Environment variable: LOG_LEVEL

How to Install

Add this to your MCP configuration file:

{
  "mcpServers": {
    "io-github-wyre-technology-rocketcyber-mcp": {
      "env": {
        "AUTH_MODE": "your-auth-mode-here",
        "LOG_LEVEL": "your-log-level-here",
        "MCP_TRANSPORT": "your-mcp-transport-here",
        "ROCKETCYBER_API_KEY": "your-rocketcyber-api-key-here",
        "ROCKETCYBER_API_URL": "your-rocketcyber-api-url-here",
        "ROCKETCYBER_CUSTOMER_ID": "your-rocketcyber-customer-id-here"
      },
      "args": [
        "-y",
        "@wyre-technology/rocketcyber-mcp"
      ],
      "command": "npx"
    }
  }
}

Documentation

View on GitHub

From the project's GitHub README.

rocketcyber-mcp

MCP (Model Context Protocol) server for the RocketCyber Managed SOC platform. Provides read-only access to RocketCyber security data through 10 tools and 3 resources.

Features

10 read-only tools covering all RocketCyber API resources
3 MCP resources for quick data access
Dual transport: stdio (default) and HTTP Streamable
Lazy SDK initialization on first tool call
Winston logger with all output routed to stderr
Connection test tool for validating credentials

One-Click Deployment

[!IMPORTANT] Before you click: this server depends on @wyre-technology/node-rocketcyber, which is hosted on the GitHub Packages npm registry. GitHub Packages has no anonymous access — even though the package is public, every npm install needs a token. The cloud builder runs npm install for you, so you must give it one, or the build fails with npm error 401 Unauthorized ... npm.pkg.github.com.

Create a GitHub Personal Access Token with the read:packages scope (classic token). Any GitHub account works — you do not need to be a member of the wyre-technology org to read its public packages.

Add it as a build variable when prompted by the deploy flow:

Cloudflare Workers → set a build variable named NODE_AUTH_TOKEN to your PAT (Workers → Settings → Build → Variables and Secrets).

DigitalOcean App Platform → set an encrypted env var named GITHUB_TOKEN with scope Build Time to your PAT (the Dockerfile reads it for the install).

Installation

This project depends on @wyre-technology/node-rocketcyber, published to the GitHub Packages npm registry, which requires a token even for public packages. Authenticate once, then install:

# Authenticate npm to GitHub Packages (token needs the read:packages scope)
export NODE_AUTH_TOKEN=$(gh auth token)   # or a PAT with read:packages

npm install
npm run build

The repo's .npmrc already points the @wyre-technology scope at GitHub Packages and reads the token from NODE_AUTH_TOKEN, so no further config is needed.

Configuration

Environment Variable	Required	Default	Description
`ROCKETCYBER_API_KEY`	Yes	-	RocketCyber API key
`ROCKETCYBER_REGION`	No	`us`	API region: `us` or `eu`
`MCP_TRANSPORT`	No	`stdio`	Transport type: `stdio` or `http`
`MCP_HTTP_PORT`	No	`8080`	HTTP port (when using http transport)
`MCP_HTTP_HOST`	No	`0.0.0.0`	HTTP host (when using http transport)
`LOG_LEVEL`	No	`info`	Log level: `error`, `warn`, `info`, `debug`
`LOG_FORMAT`	No	`simple`	Log format: `json` or `simple`

Usage

Claude Desktop (stdio)

Add to your Claude Desktop configuration (claude_desktop_config.json):

{
  "mcpServers": {
    "rocketcyber": {
      "command": "node",
      "args": ["/path/to/rocketcyber-mcp/dist/entry.js"],
      "env": {
        "ROCKETCYBER_API_KEY": "your-api-key"
      }
    }
  }
}

HTTP Transport

ROCKETCYBER_API_KEY=your-api-key MCP_TRANSPORT=http npm start

Tools

Tool	Description
`rocketcyber_test_connection`	Test the connection to RocketCyber API
`rocketcyber_get_account`	Get account information
`rocketcyber_list_agents`	List monitored agents/endpoints
`rocketcyber_list_incidents`	List security incidents
`rocketcyber_list_events`	List security events
`rocketcyber_get_event_summary`	Get event summary/statistics
`rocketcyber_list_firewalls`	List firewall devices
`rocketcyber_list_apps`	List managed apps
`rocketcyber_get_defender`	Get Windows Defender status
`rocketcyber_get_office`	Get Office 365 status

Resources

URI	Description
`rocketcyber://account`	Account information
`rocketcyber://incidents`	Security incidents
`rocketcyber://agents`	Monitored agents/endpoints

Development

# Install dependencies
npm install

# Run in development mode
npm run dev

# Build
npm run build

# Start production server
npm start

License

Apache-2.0

Reviews

No reviews yet

Be the first to review this server!

More Developer Tools MCP Servers

Git

Free

by Modelcontextprotocol · Developer Tools

Read, search, and manipulate Git repositories programmatically

Fetch

Free

by Modelcontextprotocol · Developer Tools

Web content fetching and conversion for efficient LLM usage

Toleno

Free

by Toleno · Developer Tools

Toleno Network MCP Server — Manage your Toleno mining account with Claude AI using natural language.

Rocketcyber MCP Server

About

Security Report

Findings (8)Action required

Permissions Required

What You'll Need

How to Install

Documentation

rocketcyber-mcp

Features

One-Click Deployment

Installation

Configuration

Usage

Claude Desktop (stdio)

HTTP Transport

Tools

Resources

Development

License

Reviews

No reviews yet

More Developer Tools MCP Servers

Git

Fetch

Toleno

mcp-creator-python

MarkItDown

FinAgent